Virtual IP route issue?

  • Hi There

    I am using pfSense 2.2.5

    My LAN subnet is  I have added a virtual IP to the LAN interface of with mask of /24.  The WAN interface is (test) and there is no NAT set up between the 10.10.10.* range and WAN.  I have a rule to allow all ICMP from any source/destination.  Host in 10.10.10.* range has gateway of which is the Virtual IP added to the LAN interface.

    Currently, I am unable to ping from a host in the 10.10.10.* subnet to a host in 192.168.99.* - am I missing some obvious reason why this won't work?

    If I look at the firewall log I can see ICMP traffic allowed from the 10.10.10.* host, but the ping has no reply.

    Thanks in advance for any advice

  • What type of VIP are you using?  Some must be in the same subnet as the interface that's assuming them.

  • I'm using the IP Alias type - hosts are in the and the virtual IP is

    Is that what you mean?

  • Yes.  I'll see if I can find time to simulate this this afternoon.

  • That's much appreciated - thank you

  • OK, I Just whipped it up in my ESXi lab.  Works fine for me.


    Lubutunu box @ can ping other Lubuntu box @

    Maybe something burped and you should delete and recreate that VIP.  Also, you might have a rules issue so perhaps post your LAN rules.

Log in to reply